EDB-4737
webappsphpVERIFIED
PHP Real Estate - 'fullnews.php?id' SQL Injection
CVE-2007-6462
t0pP8uZz12/14/2007
CVE-2007-6462
NONESQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter.
Veröffentlicht: 12/20/2007Aktualisiert: 4/9/2025
Beschreibung
SQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter.
KI-AnalyseKI-gestützt
Betroffene Produkte
php_real_estate_classifiedsphp_real_estate_classifieds_premium_plus
Verfügbare Exploits (1)
Referenzen
- http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip
- http://secunia.com/advisories/28119
- http://www.securityfocus.com/bid/26888ExploitPatch
- https://www.exploit-db.com/exploits/4737
- http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip
- http://secunia.com/advisories/28119
- http://www.securityfocus.com/bid/26888ExploitPatch
- https://www.exploit-db.com/exploits/4737